SpiderLabs Blog

How Threat Actors Conduct Election Interference Operations: An Overview

October 18, 2024 Pauline Bolaños

The major headlines that arose from the three most recent US presidential election cycles ...

Feline Hackers Among Us? (A Deep Dive and Simulation of the Meow Attack)

October 17, 2024 Karl Biron

Introduction In the perpetually evolving field of cybersecurity, new threats materialize daily. ...

Pronsis Loader: A JPHP-Driven Malware Diverging from D3F@ck Loader

October 08, 2024 Cris Tomboc and King Orande

Trustwave's Threat Intelligence team has discovered a new malware dubbed Pronsis Loader, with its ...

What We Know So Far About Zero-Day CUPS Vulnerabilities: CVE-2024-47176, CVE-2024-47076, CVE-2024-47175, and CVE-2024-47177

September 30, 2024

On September 26, 2024, security researcher Simone Margaritellidisclosed the details of four ...

HTML Smuggling: How Blob URLs are Abused to Deliver Phishing Content

September 24, 2024 Mike Casayuran

HTML smuggling techniques have been around for quite some time. A previous Trustwave SpiderLabs’ ...

Why Do Criminals Love Phishing-as-a-Service Platforms?

September 23, 2024 Rodel Mendrez

Phishing-as-a-Service (PaaS) platforms have become the go-to tool for cybercriminals, to launch ...

Spam With A Political Twist: Fraudsters Are Exploiting The Election Season

September 17, 2024 Katrina Udquin

The US election is less than 70 days away and threat actors are busy crafting malicious spam that ...

Distributed Denial of Truth (DDoT): The Mechanics of Influence Operations and The Weaponization of Social Media

September 13, 2024 Jose Tozo

With the US election on the horizon, it’s a good time to explore the concept of social media ...

Exposed and Encrypted: Inside a Mallox Ransomware Attack

August 27, 2024 Bernard Bautista

Recently, a client enlisted the support of Trustwave to investigate an unauthorized access incident ...

Search & Spoof: Abuse of Windows Search to Redirect to Malware

June 11, 2024 Bernard Bautista

Trustwave SpiderLabs has detected a sophisticated malware campaign that leverages the Windows ...

Fake Advanced IP Scanner Installer Delivers Dangerous CobaltStrike Backdoor

June 05, 2024 Rodel Mendrez

During a recent client investigation, Trustwave SpiderLabs found a malicious version of the ...

Fake Dialog Boxes to Make Malware More Convincing

April 17, 2024 Ram Prakash

Let’s explore how SpiderLabs created and incorporated user prompts, specifically Windows dialog ...

CVE-2024-3400: PAN-OS Command Injection Vulnerability in GlobalProtect Gateway

April 12, 2024

UPDATE: Palo Alto Networks confirmed on Tuesday (4/16) that disabling device telemetry is no longer ...

Experiencing a security breach?

Experiencing a security breach?

Hooked by the Call: A Deep Dive into The Tricks Used in Callback Phishing Emails

Stay Informed

How Threat Actors Conduct Election Interference Operations: An Overview

Feline Hackers Among Us? (A Deep Dive and Simulation of the Meow Attack)

Pronsis Loader: A JPHP-Driven Malware Diverging from D3F@ck Loader

What We Know So Far About Zero-Day CUPS Vulnerabilities: CVE-2024-47176, CVE-2024-47076, CVE-2024-47175, and CVE-2024-47177

HTML Smuggling: How Blob URLs are Abused to Deliver Phishing Content

Why Do Criminals Love Phishing-as-a-Service Platforms?

Spam With A Political Twist: Fraudsters Are Exploiting The Election Season

Distributed Denial of Truth (DDoT): The Mechanics of Influence Operations and The Weaponization of Social Media

Exposed and Encrypted: Inside a Mallox Ransomware Attack

Search & Spoof: Abuse of Windows Search to Redirect to Malware

Fake Advanced IP Scanner Installer Delivers Dangerous CobaltStrike Backdoor

Fake Dialog Boxes to Make Malware More Convincing

CVE-2024-3400: PAN-OS Command Injection Vulnerability in GlobalProtect Gateway

Stay Informed

Sign up to receive the latest security news and trends straight to your inbox from Trustwave.